Showing 1 - 2 of 2

Files from Yuri Simione

First Active	2012-02-02
Last Active	2014-04-12

EMC Documentum Content Server Information Disclosure: Posted Apr 12, 2014; Authored by Yuri Simione | Site emc.com; EMC Documentum Content Server may be vulnerable to an information disclosure vulnerability that could be potentially exploited by malicious users to gain unauthorized access to metadata. This is due to improper authorization checks being performed when trying to access metadata from folders outside of restricted folders configured for Content Server users. This vulnerability is only limited to reading the metadata as the malicious user is not able to gain read/write access to the content itself. EMC Documentum Content Server versions 7.1, 7.0, 6.7 SP2, 6.7 SP1, and versions prior to 6.7 SP1 are affected.; tags | advisory, info disclosure; advisories | CVE-2014-0642; SHA-256 | ed25d10d52c1ca576a3bfaf205e04259dcc96b76fdba8533bf165e6a24db2508; Download | Favorite | View

EMC Documentum Content Server Privilege Escalation: Posted Feb 2, 2012; Authored by Yuri Simione | Site emc.com; EMC Documentum Content Server contains a privilege elevation vulnerability that may allow an unauthorized user to obtain highest administrative privileges on the system.; tags | advisory; advisories | CVE-2011-4144; SHA-256 | 19646ed85ddfc22151746ef55a992a6a2d7dc26304edb39cc0f04a0afcf2ff4a; Download | Favorite | View